-
Notifications
You must be signed in to change notification settings - Fork 456
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
feat(checker): New checker request - GNU emacs #2941
Conversation
bcieszko
commented
Apr 25, 2023
- feat(checker): New checker request - GNU emacs (feat(checker): New checker request - GNU emacs #2921)
Codecov Report
@@ Coverage Diff @@
## main #2941 +/- ##
==========================================
- Coverage 82.85% 82.19% -0.66%
==========================================
Files 676 678 +2
Lines 10665 10674 +9
Branches 1430 1430
==========================================
- Hits 8836 8774 -62
- Misses 1459 1533 +74
+ Partials 370 367 -3
Flags with carried forward coverage won't be shown. Click here to find out more.
... and 22 files with indirect coverage changes 📣 We’re building smart automated test selection to slash your CI/CD build times. Learn more |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Looking great! Can you add at least one test file and test to go with the checker?
Here's an example of a different checker if you're not sure what that should look like:
https://github.com/intel/cve-bin-tool/pull/2862/files
Basically you'll add some data into test/test_data
and a file into test/condensed_downloads
. There's some instructions here on how to handle the "real file" test: https://github.com/intel/cve-bin-tool/blob/main/test/README.md#adding-new-tests-signature-tests-against-real-files
(The "condensed downloads" are basically compressed files of strings extracted from the binary so that we're not distributing full vulnerable binaries of open source packages but can still run regression tests.)
Let us know if you get stuck anywhere!
Sure, will add a test. |
Tests added :) |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
The tests are detecting libtiff and pango in the ubuntu binary (and only the ubuntu binary). I've put instructions for how to fix it if that's expected and if it's unexpected inline. (short term it's the same solution: add libtiff
and pango
to other_products
, longer term it's possible those signatures are a bit overzealous in matching and we could file a separate issue for that)
* feat(checker): New checker request - GNU emacs * closes intel#2921 Signed-off-by: Bartlomiej Cieszkowski <bartlomiej.cieszkowski@intel.com> Signed-off-by: Przemyslaw Romaniak <przemyslaw.romaniak@intel.com>
workaround for false detection Co-authored-by: Terri Oda <terri@toybox.ca> Signed-off-by: Bartlomiej Cieszkowski <bartlomiej.cieszkowski@intel.com>
cleaned up black checker |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This looks ready to me; I'm going to update the branch to get the linters to run since re-running them yesterday doesn't seem to have worked.
@terriko should i update branch? to make checkers run? |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
There we go. I think you got hit during a period after we turned off the self-hosted runners where some tests just failed. Working now, so time to merge!